i have a problem several times,one user keeps changing his ip addres to one i have not assigned… i need a way to end this.(no ppoe) i use static
i think there is a way that only hte ips i `pprove will be surfing no matter if he changes ip to a valid one, he will not surf..
also a way to cut the user off if he has not paid the bill than just shut him down..
thanks for your help.
You really should consider implementing pppoe or some other auth protocol. This gives you total control over your clients connections they will not be able to specify thier own IP etc. ROS supports many different types, and my flavor of choice for auth of a client is pppoe which is layerless (almost) .
And to really get into controlling your customer base try the “Usermanager” package, is all you need to control ppp auth and your customers.
I agree with Airstream, but you could also try to use the Firewall filter with the client’s IP address you have assigned as well as the MAC address of their authorised device.
This is a messy workaround and will only allow a specific machine with a specific IP address through the firewall.
Static ARP could help you, when IP address is assigned to specific MAC-address, however it is helpful only when user is not changing MAC-address.
I would drop him as a customer…
For me tho, all my cpe’s are router with nat, so only I can assign IP.
equi would you post an example?
IP traffic is filter in firewall, traffic that somehow appears at the router, firewall configuration examples,
http://wiki.mikrotik.com/wiki/Firewall